💼 About This Role

You'll lead Point C's IT security governance program, reporting to the CISO. You'll develop and manage security policies, oversee risk and compliance initiatives, and ensure alignment with HIPAA, HITRUST, and SOC 2. This role drives security awareness and vendor risk management while translating regulatory requirements into scalable processes.

🎯 What You'll Do

• Develop and manage IT security policies and governance committees.
• Oversee risk assessments and compliance with HIPAA, HITRUST, SOC 2.
• Manage security awareness training and phishing simulations.
• Lead vendor risk management and IT risk register reporting.

📋 Requirements

• 8+ years in information security, IT governance, or risk management.
• 3+ years leading governance or compliance in healthcare or regulated industries.
• Experience with HITRUST, SOC 2 Type II, and HIPAA.
• Proven experience building policy, awareness, and vendor risk programs.